3 matches found
CVE-2011-1889
CVE-2011-1889 affects Microsoft Forefront Threat Management Gateway (TMG) 2010. The vulnerability is in the NSPLookupServiceNext function of the TMG Firewall Client Winsock provider, due to a memory corruption/bounds-checking flaw that enables remote code execution. Exploitation involved remote a...
CVE-2009-0077
CVE-2009-0077 affects Microsoft ISA Server and Forefront TMG MBE where the firewall engine mishandles TCP state for Web proxy/listeners, enabling a remote attacker to cause a denial of service by creating orphaned/open sessions. Affected products/versions include ISA Server 2004 SP3, ISA Server 2...
CVE-2009-0237
CVE-2009-0237 is a non-persistent cross-site scripting (XSS) vulnerability in the HTML forms authentication component cookieauth.dll used by ISA Server and Forefront TMG MBE and affected 2006/2006 SP1, as described in the MS09-016 bulletin. The root cause is improper input validation of HTTP form...